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AMENDMENTS TO THE CLAIMS 



This listing of claims replaces all prior versions, and listings, of claims in the application: 
Listing of Claims: 



applications that operate on data related to an identity, the computer environment also including 
a service that maintains data associated with the identity, a method for one of the plurality of 
applications to operate on data related to the identity, the method comprising the following: 

identifying data associated with an identity, which is maintained as a data object bv a 
service independent of an application seeking to operate on the data, wherein control over We$$ 
privileges associated with the data is retained bv the identity; 

an act of id e nti fyi ng - a data otruoturothat r e presents data that is to b e oporatod on, tho data 
being associat e d with th e id e ntity such that th e- da t a b e longs to th e associat e d identity and also 
such that tho identity r e taino oontrol ov e r access privil e ges of tho plurality of applications to th e 
data, th e data s tructure b e ing in accordance with a dota format recognisod by tho oorvico and the 
plurality of applications; 

formulating a request to operate on the data, wherein fo rmulating the request includes: 

an act of constructing a network message in accordance with a message format that is 
recognized by the service, the network message representing a request to perform the operation 
on the data structure, wherein t he network message includes an identification of identifying th e 
data structur e by id e ntifying the identit y and a schema associated with the data structure ; and 

an act of dispatching the network message to the service. 



Claim 1. 



(Currently Amended) In a computer environment including a plurality of 
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Claim 2. (Original) A method in accordance with Claim l f wherein the act of 

dispatching the network message to the service comprises dispatching the network message 

directly to the service without first communicating with a locator service. 

Claim 3. (Original) A method in accordance with Claim 1, wherein the data 
structure comprises a content data structure that represents the actual data of interest 

Claim 4. (Original) A method in accordance with Claim 1, wherein the data 
structure comprises an access control data structure. 

Claim 5. (Original) A method in accordance with Claim 1, wherein the data 
structure comprises a systems data structure. 

Claim 6. (Previously Presented) A method in accordance with Claim 1, 
wherein the data that is to be operated on is not directly accessed by the plurality of applications, 
but is only directly accessed via the service. 

Claim 7. (Previously Presented) A method in accordance with Claim 1, 
further comprising: 

an act of the granting the application access to the data structure prior to the acts of 
identifying, constructing, and dispatching, wherein the decision on whether or not to grant the 
application accesses is based on permissions provided by the identity. 
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Claim 8. (Previously Presented) A method in accordance with Claim 1, 
further comprising: 

an act of revoking access from the application to the data structure after the acts of 
identifying, constructing, and dispatching, wherein the decision on whether or not to revoke 
access is based on permissions provided by the identity. 

Claim 9. (Original) A method in accordance with Claim 1, further comprising 
the following: 

an act of determining an address of the service. 

Claim 10. (Original) A method in accordance with Claim 9, wherein the act of 
constructing a network message comprises the following: 

an act of including the address of the service in the network message. 

Claim 1 1 . (Original) A method in accordance with Claim 9, wherein the network 
message is a first network message, wherein the act of determining an address of the service 
comprises the following: 

an act of constructing a second network message in accordance with the message format 
that i$ recognized by a locator service, the second network message representing a query for the 
address using the identification of the identity; 

an act of dispatching the second network message to the locator service; and 

an act of receiving a response from the locator service that includes the address. 
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Claim 12. (Original) A method in accordance with Claim 11, wherein the act of 
receiving a response from the locator service comprises the following: 

an act of receiving a third network message from the locator service, the third network 
message being in accordance with the message format. 

Claim 13. (Original) A method in accordance with Claim 1, wherein the act of 
constructing a network message in accordance with a message format that is recognized by the 
service comprises the following: 

an act of constructing a network message in accordance with the Simple Object Access 
Protocol. 

Claim 14. (Original) A method in accordance with Claim 1, wherein the act of 
dispatching the network message to the service comprises the following: 

an act of dispatching the network request to a locator service that maintains a list of 
addresses for type-specific data services corresponding to the identity. 

Claim 15. (Original) A method in accordance with Claim 1, wherein the act of 
dispatching the network message to the service comprises the following: 

an act of dispatching the network request to a type-specific data service that maintains a 
list of addresses for type-specific data services corresponding to the identity. 
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Claim 16. (Original) A method in accordance with Claim 1. wherein the act of 
dispatching the network message to the service comprises the following: 

an act of dispatching the network message to the service using a transport protocol that is 
compatible with transport over the Internet. 

Claim 17. (Original) A method in accordance with Claim 1, wherein the act of 
dispatching the network message to the service comprises the following: 

an act of dispatching the network message to a different machine as compared to the 
machine that runs the application. 

Claim 18. (Original) A method in accordance with Claim 1, wherein the act of 
dispatching the network message to the service comprises the following: 

an act of dispatching the network message to a service thai is run on the same machine as 
the application. 

Claim 19. (Original) A method in accordance with Claim 1, wherein the identity 
is an individual. 

Claim 20. (Original) A method in accordance with Claim 1 > wherein the identity 
is a group of individuals. 

Claim 2L (Original) A method in accordance with Claim 1 , wherein the identity 
is an organization. 
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Claims 22-23. (Cancelled). 

Claim 24. (Currently Amended) A computer program product for use in a computer 
environment including a plurality of applications that operate on data related to an identity, the 
computer environment also including a service that maintains data associated with the identity, 
the computer program product for implementing a method for one of the plurality of applications 
to operate on data related to the identity, the computer program product comprising one or more 
computer-readable media having stored thereon the following: 

computer-executable instructions for identifying a data structure? that reproocnta data that 
i s to b e operat e d on, tho data being associated with tho identity ouch that th e data bolongs to - th e 
asso ciat e d identity and also such that tho identity retains control over ace ess- privileg e s of th e 
plurality of applications to the data, th e data struoture b e ing in accordanc e with a data format 
r e cogniz e d by tho sorvioo and tho plurality of applications; 

comput e r executabl e instructions for constructing a n e twork message in aooordancc with 
a message format that is recognized by tho oorvioo, tho network message repr e s e nting a roqucat 
to p e rfoim tho op e ration - on th e- data structure, the network moooago identifying the data structure 
by id e ntifying th e identity; and 

comput e r e xecutabl e instructions for pausing tho n e twork message to bo diopatohed to the 
sefv^ eimplementing;the method recited in claim 1 . 

Claim 25. (Original) A computer program product in accordance with CJaim 24, 
wherein the one or more computer-readable media are physical storage media. 
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Claim 26. (Original) A computer program product in accordance with Claim 24, 
wherein the one or more computer-readable media further have stored thereon the following: 

computer-executable instructions for constructing a second network message in 
accordance with the message format that is recognized by a locator service, the second network 
message representing a query for the address using the identification of the identity; 

computer-executable instructions for causing the second network message to be 
dispatched to the locator service; and 

computer-executable instructions for detecting the receipt of a response from the locator 
service that includes the address. 
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Claim 27. (Currently Amended) In a computer environment including a plurality of 
applications that operate on data related to an identity, the computer environment also including 
a service that maintains data associated with the identity, a method for the service facilitating 
access of the plurality of applications to data related to the identity, the method comprising the 
following: 

an act of receiving a network message from one of the plurality of applications, the 
network message structured in accordance with a message format that is recognized by the 
service, the network message representing a request to operate on data maintained by the service 
independent of the one of the plurality of applications as a data structure associated with the 
identit y, wherein ouoh that t he data belongs to the associated identity and whgreir^also such that 
the identity retains control over access privileges of the plurality of applications to the data^-fee 
data struoture being structur e d in accordanc e with u data format rooognizod by the service and 
ttin plurality of applications , the network message including an identification of the identity and a 
schema associated with the data s tructure; 

an act of interpreting the network message in light of the- message format to thereby 
extract an identification of the identity and an identification of the data structure; and 

an act of performing the requested Ofperation on the data structure using the data format. 

Claim 28. (Previously Presented) A method in accordance with Claim 27, 
further comprising the following: 

prior to the act of performing the requested operation, an act of determining that the one 
of the plurality of applications is authorized to perform the requested operation on the data 
structure based on permissions provided by the idenLity. 
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Claim 29. (Original) A method in accordance with Claim 28, wherein: 
the method further comprises an act of maintaining a list of access rights to the data 
structure; and 

the act of determining that the one of the plurality of applications is authorized to perform 
the requested operation on the data structure comprises an act of referring to the list of access 
rights. 

Claim 30. (Original) A method in accordance with Claim 29, wherein the act of 
maintaining a list of access rights to the data structure comprises an act of honoring requests 
issued by the identity to control access rights to the data structure. 

Claim 31. (Original) A method in accordance with Claim 27, wherein the data 
structure represents addresses corresponding to a plurality of type-specific data services that 
maintain type-specific data structures related to the identity. 

Claim 32. (Original) A method in accordance with Claim 31, wherein network 
message is a first network message, wherein the act of performing the requested operation on the 
data structure comprises the following: 

an act of reading at least one address from the data structure; 

an act of constructing a second networtc message that includes the at least one address 
read from the data structure; and 

an act of dispatching the second network message. 
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Claim 33. (Original) A method in accordance with Claim 32, wherein the act of 
dispatching the second network message comprises an act of dispatching the second network 
message to the one of the plurality of application programs. 

Claim 34. (Original) A method in accordance with Claim 32, wherein the act of 
dispatching the second network message comprises an act of dispatching the second network 
message in accordance with the message format 

Claim 35. (Original) A method in accordance with Claim 27, wherein the data 
structure represents personal address information corresponding to the identity. 

Claim 36. (Original) A method in accordance with Claim 27, wherein the data 
structure represents contacts information corresponding to the identity. 

Claim 37. (Original) A method in accordance with Claim 27, wherein the data 
structure represents grocery list information corresponding to the identity. 

Claim 38. (Original) A method in accordance with Claim 27, wherein the data 
structure represents in-box information corresponding to the identity. 

Claim 39. (Original) A method in accordance with Claim 27, wherein the data 
structure represents music service information corresponding to the identity. 
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Claim 40. (Original) A method in accordance with Claim 27, wherein the data 
structure represents calendar information corresponding to the identity. 

Claim 41. (Original) A method in accordance with Claim 27, wherein the data 
structure represents documents that the identity is entitled to access. 

Claim 42. (Original) A method in accordance with Claim 27, wherein the data 
structure represents application setting information corresponding to the identity. 

Claim 43. (Original) A method in accordance with Claim 27, wherein the data 
structure represents physical device information corresponding to the identity. 

Claim 44. (Original) A method in accordance with Claim 27. wherein the data 
structure represents favorite Web site information corresponding to the identity. 

Claim 45. (Original) A method in accordance with Claim 27, wherein the 
network message is a first network message, wherein the act of performing the requested 
operation on the data structure comprises the following: 

an act of reading at least one address from the data structure; 

an act of constructing a second network message that includes the at least one address 
read from the data structure; and 

an act of dispatching the second network message. 
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Claim 46. (Original) A method in accordance with Claim 45 t wherein the act of 
dispatching the second network message comprises an act of dispatching the second network 
message to the one of the plurality of application programs. 

Claim 47. (Original) A method in accordance with Claim 45, wherein the act of 
dispatching the second network message comprises an act of dispatching the second network 
message in accordance with the message format. 
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Claim 48. (Currently Amended) A computer-program product for use in a computer 
environment including a plurality of applications that operate on data related to an identity, the 
computer environment also including a service that maintains data associated with the identity, 
the computer program product for implementing a method for the service facilitating access of 
the plurality of applications to data related to the identity, the computer program product 
comprising one or more computer-readable media having stored thereon the following: 

computer-executable instructions for d e t e cting the roooipt of a notwork message from on e 
of tho plurality of applications?, tho notwork moooago structur e d in accordanco with a message 
format that is rooogniz e d by the s e rvic e , th e network message r e pr e senting a r e quest to op e rat e 
on a data structure) aaoooiatod with the id e ntity ouch that tho data belongs to tho associat e d 
i dentity and also ouch that tho identity retains control over access privilogoo of the plurality of 
applications to the data, the data structur e being structured in oooordancB with a data format 
recogniz e d by th e servic e and tho plurality of applications; 

comput e r e x e cutable instructions for - intorproting the network moosago in light of tho 
mossago format to thereby extract an id e ntification o£4ho identity and an id e ntification of th e 
data stnicturo; and 

computer e x e cutabl e instruction:} for performing tho requootod operation on th e data 
Stmetwe uflwg the data forma ti mplementing the me t hod recited in claim 27 . 

Claim 49. (Original) A computer program product in accordance with Claim 48, 
wherein the one or more computer-readable media are physical storage media. 
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Claim 50. (Original) A computer program product in accordance with Claim 48, 
wherein the one or more computer-readable media further comprise the following: 

computer-executable instructions for determining that the one of the plurality of 
applications is authorized to perform the requested operation on the data structure prior to the 
performing the requested operation. 

Claim 5 1 . (Original) A computer program product in accordance with Claim 48, 
wherein the one or more computer-readable media further have stored thereon the following: 

computer-executable instructions for maintaining a list of access rights to the data 
structure; and 

computer-executable instructions for referring to the list of access rights in order to 
determine that the one of the plurality of application is authorized to perform the requested 
operation on the data structure. 
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Claim 52. (Currently Amended) A computer network that facilitates access to 
identity^entric data, the computer network comprising the following: 

a plurality of applications that operate on data related to an identit y, wherei n ouoh that the 
data belongs to the associated identity and ri s e - such that t he identity retains control over access 
privileges of the plurality of applications to the data, each of the plurality of applications 
configured to determine that data associated with the identity is to be operated on, identify a data 
structure that represents the data associated with the identity, construct a network message in 
accordance with a message structure recognized by the plurality of applications, wherein the 
network message includes an identification of the identit y and a schema associated with the data 
structure, the network message representing a request to perform the operation on the data 
structure, the network mocoago identifying th e data structuro by identifying tho identity, and 
configured to dispatch the network message to the service; and 

a plurality of services that maintain data associated with the identity, each of the plurality 
of applications configured to detect the receipt of the network message from one of the plurality 
of applications, interpret the network message in light of the message format to thereby extract 
an identification of the identity and an identification of the data structure, and perform the 
requested operation on the data structure using the data format. 
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Claim 53. (Currently Amended) A method for providing identity oontric data to ono 
or mor* rippli"^?™^ + Ho TnnthnrT innlnriing n t l e nst th e following astoas recited in claim 27, 
further comprising : 

storing identity-centric data relating to multiple identities in a data store associated with a 
4ato -maintained bv the s ervic e, whorom tho identity - c e ntric data relat e s to multiple id e ntiti e s 
such that the data belongs to th e associat e d identity and also ouch that th e id e ntity r e taino oontrol 
over qcoosg privilogoo of the plurality of applicationp - to th e data ; 

receiving various requests from the applications for identity-centric data relating to at 
least some of the identities; and 

providing the requested data to the requesting applications in response to their requests. 
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Claim 54. (Currently Amended) A method for accessing identity e ontric data via a 
data ooivioQ whioh maintain s identity c e ntric data r e lating to us or id e ntiti e s, tho mothodas recited 
in claim L farther comprising: 

requesting identity-centric data relating to the identity: and one or mor e of tho user 
identities from iho data sorvioo, wherein di e id e ntity oontrio data relates to multipl e identities 
such that the data b e longs to tho associated id e ntity and also such that the idontity retains control 
over acce s s privil e g e s of th e plurality of applications to th e data, and 

receiving the requested identitv-centric data from the data service. 

Claim 55-59. (Cancelled). 
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